Posted 3/22/2024, 3:03:00 PM
New Vulnerability in Apple Silicon Chips Leaks Cryptographic Keys, Affects M1-M3 Chips
- New vulnerability called GoFetch found in Apple Silicon chips that allows extraction of cryptographic keys
- Stems from how data memory-dependent prefetchers (DMPs) implement certain crypto operations
- Affects Apple M1, M2, and M3 chips; Intel 13th gen chips also impacted but less severely
- Can be exploited by any malicious app running in same CPU cluster with just user privileges
- Mitigations exist but degrade performance; fixes require changes to chip architecture or improved crypto implementations